I use Filezilla to transfer files (I use winSCP for editing because upoading is painfully slow due to the nature of the program). Now… in Filezilla I have some options for transfer:
- FTP over SSL/TLS(using encryption)
- FTP over SSL(explicit encryption)
- SFTP using SSH
- FTP over TLS(explicit encryption)
Pardon me for being thick, but what’s the point? I expect to be corrected but from what I read I can’t figure it out. This is what I can’t figure:
Here on my machine nothing is encrypted. On the server nothing is encrypted. So it seems that when I choose to use a secure ftp, all I am doing is protecting the data in transit. But the ftp connection on the server couldn’t care – I use the same password for ftp or any of the others. So if all I’m doing is protecting the transfer then if what I’m doing is innocent (all of what I upload/download with ftp) then why use this encryption? Especially when it slows things down? The IP I’m going to can’t be encrypted can it? So they know the IP so they could try and batter their way in if they wanted. If it’s to stop ‘snooping’ or ‘packet sniffing’ or whatever it is then surely using encryption indicates something?
I can see why I might encode a letter to a friend – I suppose this is similar? In which case you would use ftp when uploading blog files but sftp when uploading plans for illegal activities? I can’t help but feel that for the vast majority of people this stuff just doesn’t matter – and for those individuals that are left it also doesn’t really matter. If someone important wants your data they’ll just take it. Or is there actually a sound reason to use the secure route?